Wired

The Next Wave of Log4J Attacks Will Be Brutal

A week ago, the internet experienced a seismic event. Thanks to a vulnerability in Log4j, a popular open source library, multitudes of servers around the world were suddenly exposed to relatively ...
Bleeping Computer

State hackers use new PowerShell backdoor in Log4j attacks

Hackers believed to be part of the Iranian APT35 state-backed group (aka 'Charming Kitten' or 'Phosphorus') has been observed leveraging Log4Shell attacks to drop a new PowerShell backdoor. The ...
Fast Company

Log4j vulnerability explained: The software flaw that has the tech world racing for a fix

The entire cybercommunity is on high alert over a security risk that experts are calling one of the worst of our time. In late November, a cloud-security researcher for Chinese tech giant Alibaba ...
ZDNet

Log4J: Attackers continue targeting VMware Horizon servers

Two weeks ago, the UK's National Health Service (NHS) issued a warning that an 'unknown threat group' is attempting to exploit a Log4j vulnerability (CVE-2021-44228) in VMware Horizon servers to ...
InfoWorld

How to detect the Log4j vulnerability in your applications

A bug in the ubiquitous Log4j library can allow an attacker to execute arbitrary code on any system that uses Log4j to write logs. Does yours? Yesterday the Apache Foundation released an emergency ...